RE: Prevent connections for some users through SQL*Plus, TOAD

From: Tanel Poder <tanel.poder.003_at_mail.ee>
Date: Mon, 02 Jun 2008 21:48:07 +0800
Message-id: <8F7E0770F35146F38E0EFCB2E0B28BB5@windows01>

Raise an exception in that trigger and all users without "administer database trigger" privilege can't connect anymore.

But if you need to do such things you should really review your security policy - as if you enforce security by checking client executable name, then anyone who can change client executable name (all users!) can work around your policy.

Regards,
Tanel Poder
<http://blog.tanelpoder.com/> http://blog.tanelpoder.com

From: oracle-l-bounce_at_freelists.org [mailto:oracle-l-bounce_at_freelists.org] On Behalf Of Ricardo Santos
Sent: Monday, June 02, 2008 19:48
To: ORACLE-L
Subject: Prevent connections for some users through SQL*Plus, TOAD

Hello to you all,

I've an old fashion application that uses an Oracle Database where each application user, is also a database user. That way, each user can connect to the database through other tools beside the application, like TOAD, SQL*Plus, etc.

--

http://www.freelists.org/webpage/oracle-l Received on Mon Jun 02 2008 - 08:48:07 CDT

This message: [ Message body ]
Next message: Martin Klier: "11gR1 Clusterware Voting Disk and uncertified NFS volume"
Previous message: Sanjay Mishra: "Re: orapwd"
In reply to: Ricardo Santos: "Prevent connections for some users through SQL*Plus, TOAD"
Next in thread: Niall Litchfield: "Re: Prevent connections for some users through SQL*Plus, TOAD"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message